| View previous topic :: View next topic |
| Author |
Message |
wallace1819
Apprentice
Joined: 17 Aug 2002
Posts: 195
Location: VT
|
 Posted: Sat Aug 17, 2002 9:12 pm Post subject: suid question |
 |
|
I've been working on cuting down some of my suid apps on my laptop, but I have a couple of questions here is what I have left....
-rwsr-xr-x 1 root wheel /var/cache/edb/dep/dep-portage-2.0.27.ebuild
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/diffutils-2.7.5-r1
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/fileutils-4.1.8
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/acl-1.1.3
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/acl-20020124-r1
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/attr-1.1.3-r1
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/attr-1.1.3
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/attr-20020124
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/grep-2.4.2-r5
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/grub-0.90-r7
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/netkit-base-0.17-r5
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/psmisc-19-r2
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/pam-login-3.6-r1
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/sharutils-4.2.1-r4
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/tar-1.13.25-r1
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/textutils-2.0.19
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-apps/devfsd-1.3.24
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-apps/xfsprogs-1.3.13
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-apps/xfsprogs-20020124-r2
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-apps/pcmcia-cs-3.1.33-r5
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-apps/pcmcia-cs-3.1.34-r6
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-apps/pcmcia-cs-3.1.34-r7
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-apps/pcmcia-cs-3.2.0
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-devel/ld.so-1.9.11-r2
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-libs/cracklib-2.7-r2
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-libs/cracklib-2.7-r3
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-libs/gpm-1.19.6
-rw-rwSr-- 1 root root /var/cache/edb/dep/sys-libs/gpm-1.20.0-r1
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/sys-kernel/xfs-sources-2.4.18
-rw-rwSr-- 1 root wheel /var/cache/edb/dep/kde-base/kdenetwork-2.2.2-r1
Can the suid bit be removed from the stuff in /var/cache/edb/dep/* ????
-rwsr-xr-x 1 root root /usr/bin/gpasswd
-rwsr-xr-x 1 root root /usr/bin/passwd
-rws--x--x 1 root root /usr/lib/misc/ssh-keysign
-r-sr-xr-x 1 root root /usr/sbin/pwdb_chkpwd
-r-sr-xr-x 1 root root /usr/sbin/unix_chkpwd
-rws--x--x 1 root root /usr/X11R6/bin/xterm
-rws--x--x 1 root root /usr/X11R6/bin/XFree86
-rwsr-xr-x 1 root root /bin/su
Anyone know if xterm has to be suid???
Last but not least...Is there a Gentoo-Security email list where anouncements are made concerning vuln/patches/etc... for apps available via emerge???
thx,
wallace |
|
| Back to top |
|
 |
rac
Bodhisattva
Joined: 30 May 2002
Posts: 6553
Location: Japanifornia
|
| Posted: Sun Aug 18, 2002 1:11 am Post subject: Re: suid question |
|
|
| wallace1819 wrote: | | Anyone know if xterm has to be suid??? |
Yes - it needs write access to /var/run/utmp and /var/log/wtmp, even when run as a normal user.
| Quote: | | Last but not least...Is there a Gentoo-Security email list where anouncements are made concerning vuln/patches/etc... for apps available via emerge??? |
There's gentoo-announce, which usually contains these announcements, many of which are mirrored here in the News & Announcements forum. There is also a gentoo-security mailing list for discussions related to Gentoo security.
_________________
For every higher wall, there is a taller ladder |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
Networking & Security
